EP1452026B1 - Verfahren zum verteilen verwürfelter digital-datenentschlüsselungsschlüssel - Google Patents

Verfahren zum verteilen verwürfelter digital-datenentschlüsselungsschlüssel Download PDF

Info

Publication number
EP1452026B1
EP1452026B1 EP02799089A EP02799089A EP1452026B1 EP 1452026 B1 EP1452026 B1 EP 1452026B1 EP 02799089 A EP02799089 A EP 02799089A EP 02799089 A EP02799089 A EP 02799089A EP 1452026 B1 EP1452026 B1 EP 1452026B1
Authority
EP
European Patent Office
Prior art keywords
period
crypto
portal
duration
terminal
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Lifetime
Application number
EP02799089A
Other languages
English (en)
French (fr)
Other versions
EP1452026A1 (de
Inventor
André CODET
Pierre Fevrier
No¬L Fontaine
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Orange SA
Original Assignee
France Telecom SA
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by France Telecom SA filed Critical France Telecom SA
Publication of EP1452026A1 publication Critical patent/EP1452026A1/de
Application granted granted Critical
Publication of EP1452026B1 publication Critical patent/EP1452026B1/de
Anticipated expiration legal-status Critical
Expired - Lifetime legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N7/00Television systems
    • H04N7/16Analogue secrecy systems; Analogue subscription systems
    • H04N7/173Analogue secrecy systems; Analogue subscription systems with two-way working, e.g. subscriber sending a programme selection signal
    • H04N7/17309Transmission or handling of upstream communications
    • H04N7/17318Direct or substantially direct transmission and handling of requests
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/20Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
    • H04N21/25Management operations performed by the server for facilitating the content distribution or administrating data related to end-users or client devices, e.g. end-user or client device authentication, learning user preferences for recommending movies
    • H04N21/266Channel or content management, e.g. generation and management of keys and entitlement messages in a conditional access system, merging a VOD unicast channel into a multicast channel
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/20Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
    • H04N21/25Management operations performed by the server for facilitating the content distribution or administrating data related to end-users or client devices, e.g. end-user or client device authentication, learning user preferences for recommending movies
    • H04N21/266Channel or content management, e.g. generation and management of keys and entitlement messages in a conditional access system, merging a VOD unicast channel into a multicast channel
    • H04N21/26606Channel or content management, e.g. generation and management of keys and entitlement messages in a conditional access system, merging a VOD unicast channel into a multicast channel for generating or managing entitlement messages, e.g. Entitlement Control Message [ECM] or Entitlement Management Message [EMM]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/45Management operations performed by the client for facilitating the reception of or the interaction with the content or administrating data related to the end-user or to the client device itself, e.g. learning user preferences for recommending movies, resolving scheduling conflicts
    • H04N21/462Content or additional data management, e.g. creating a master electronic program guide from data received from the Internet and a Head-end, controlling the complexity of a video stream by scaling the resolution or bit-rate based on the client capabilities
    • H04N21/4622Retrieving content or additional data from different sources, e.g. from a broadcast channel and the Internet
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/47End-user applications
    • H04N21/478Supplemental services, e.g. displaying phone caller identification, shopping application
    • H04N21/4782Web browsing, e.g. WebTV
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/60Network structure or processes for video distribution between server and client or between remote clients; Control signalling between clients, server and network components; Transmission of management data between server and client, e.g. sending from server to client commands for recording incoming content stream; Communication details between server and client 
    • H04N21/65Transmission of management data between client and server
    • H04N21/654Transmission by server directed to the client
    • H04N21/6543Transmission by server directed to the client for forcing some client operations, e.g. recording
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/80Generation or processing of content or additional data by content creator independently of the distribution process; Content per se
    • H04N21/83Generation or processing of protective or descriptive data associated with content; Content structuring
    • H04N21/845Structuring of content, e.g. decomposing content into time segments
    • H04N21/8456Structuring of content, e.g. decomposing content into time segments by decomposing the content in the time domain, e.g. in time segments
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N7/00Television systems
    • H04N7/16Analogue secrecy systems; Analogue subscription systems
    • H04N7/167Systems rendering the television signal unintelligible and subsequently intelligible
    • H04N7/1675Providing digital key or authorisation information for generation or regeneration of the scrambling sequence

Definitions

  • the invention is in the field of access control and more particularly relates to an individual key distribution method for decrypting scrambled digital data transmitted by a broadcasting system to a plurality of terminals connected to a data exchange network.
  • said system including at least one reservation portal for providing the individual keys, at least one scrambling platform and at least one server for distributing the scrambled data.
  • the invention also relates to a device for implementing the method.
  • the DVB Digital Video Broadcasting
  • ECM access and EMM respectively Entitlement Control Message, and Entitlement Management Message, in English
  • This information includes an encrypted CW control word that changes periodically every ten seconds for example.
  • a new control word corresponding to the same program or a new program is transmitted to subscribers with ECM access control messages.
  • EMMs are transmitted before the programs to which they apply and are stored in a smart card.
  • a decoder When a decoder receives an EMM containing the encrypted operating key corresponding to its group, it checks whether this key is already stored. Otherwise, the operating key is decrypted by the inverse function of the encryption function and then stored.
  • the decoder consists of a terminal and a memory card integrating the security processor. And when the scrambled program is broadcast, the operating key is used to decrypt the associated CW control word that is sent to subscribers via the ECMs, or registered upon initialization of the receiver.
  • a subscriber to access the scrambled programs, a subscriber must have equipment that usually includes a security processor included in a memory card containing the access parameters defining the access rights to the scrambled programs .
  • This access control system is not suitable for broadcasting over the Internet because it is not possible to distribute a smart card reader to each user connected to the networks because of the large number of potential subscribers. and the geographical dispersion of these subscribers.
  • the figure 1 schematically represents a system of diffusion through the Internet network 2 of audiovisual programs or thematic channels scrambled to terminals 4 that do not necessarily have a security processor.
  • This system comprises a multicast broadcasting server 6 connected to an antenna 8 for receiving audiovisual programs, or to a database 10 or to a source of television programs such as a camera 12.
  • the server 6 is also connected to an audiovisual program reservation portal 14 and to a scrambling platform 16.
  • the reservation portal 14 is a calculator comprising software for managing a presentation page of a commercial offer of audiovisual programs and generating access rights reservation numbers for these programs.
  • the portal 14 also includes a cryptographic software including an encryption function G for calculating individual keys.
  • the client terminals 4 comprise a software using a decryption function for the reconstitution of the CW control words.
  • the security of the transmissions in this system rests, on the one hand, on the distribution of one or more individual keys to each terminal 4, and on the other hand, on the simultaneous broadcast with the program to descramble a data ALEA1 common to all customers.
  • the terminal 4 can calculate the control word CW after receiving the random data ALEA1, that is to say only at the moment when it needs to descramble the data received.
  • the initialization of the scrambling / descrambling function is performed on the one hand with the control word CW, and on the other hand with a second random data element ALEA2, conveyed in the signal to diversify the scrambling / descrambling sequences using the same CW control word.
  • the calculation of CW can not be done without an individual key and the individual address of a terminal 4. This makes it possible to detect the origin of a wrong duplication of individual key, which is inseparable from the unique identifier of the terminal 4 to which it has been allocated. If such fraud is detected, the terminal 4 at fault will be excluded from the distribution of the following sets of individual keys.
  • a major problem identified in the prior art systems described above is related to the transmission channel congestion that results from the large number of calls to manage in connected mode to distribute the individual keys to each user.
  • a first solution, used in pay-TV program distribution, consists of inserting the keys in a stream broadcast to all receivers, each receiver then filters the received stream to retain only the key that concerns it.
  • the object of the invention is to overcome the disadvantages of the prior art described above by means of a method allowing a distribution of decryption keys without overloading the reservation portal regardless of the number of client terminals and without reducing the bandwidth used for data dissemination.
  • the duration of a crypto-period is variable depending on the number of terminals simultaneously connected to the reservation portal.
  • This duration depends on the capacities of the reservation portal but can not be less than a minimum duration CP min .
  • connection of a terminal to the reservation portal is initiated by a connection request transmitted from the terminal to the portal.
  • connection request is sent during the current crypto-period
  • subsequent connection date that results is defined by the reservation portal for the crypto-period CP i + 1 or for a subsequent crypto-period.
  • This date is defined by a time offset calculated with respect to a predefined time reference which is signaled to each terminal P i by the phase change of a specific call trigger signal.
  • This specific call trigger signal initializes a call distribution time DRA representing the time required to process the connection requests that occurred during a crypto-period CP i . Connection requests are taken into account from a change of state of the call trigger signal.
  • the change of the phase of the specific call triggering signal is realized only if the average number of NDMA calls during a sliding window of predetermined fixed duration is less than a trigger threshold of predetermined SDA call.
  • the change of the crypto-period is realized only if the duration of a current crypto-period CP i is greater than the minimum duration CP min , and if the call distribution time (DRA) has elapsed.
  • the scrambled data represent an audiovisual program.
  • the duration of a crypto-period corresponds to the duration of the audiovisual program.
  • the invention also relates to an individual key distribution signal, a transmitter for transmitting this signal, and a receiver for receiving this signal.
  • the signal comprises a series of crypto-periods CP i each defining a duration of validity of an individual key Ki, each crypto-period being able to vary between a minimum duration CP min and a maximum duration CP max in function of the number of terminals connected simultaneously to the network.
  • the signal includes an indication of the date of connection of a user to the network.
  • connection date is defined by a time offset with respect to a predefined time reference in the signal.
  • said time reference is signaled to each terminal by the phase change of a specific call trigger signal.
  • said call triggering signal initializes a call distribution duration representing the time necessary to process the connection requests that occurred during a crypto-period CP i .
  • the method according to the invention is implemented by an individual key distribution device for decrypting digital data broadcast by a broadcasting system comprising a reservation portal for providing said keys, a scrambling platform and a server. scrambled data.
  • the scrambling period is divided into a series of crypto-periods CP i each defining a period of validity of an individual decryption key Ki.
  • the change of crypto-period is signaled by the change of state of a specific signal sent by the emission point to each terminal 4.
  • CP i The characteristic of these crypto-periods CP i are defined during the creation of the television service and for a given service. They are stored by gate 14.
  • the duration D i of a crypto-period CP i is a function of the number of terminals 4 connected to the network without being less than CP min . If the duration D i reaches CP max , an alarm is then generated to alert gate 14 that the expected CP max time is exceeded for the connected population. Gate 14 triggers a mechanism to increase the duration of the current crypto-period beyond this value to absorb the current call flow. A frequent overrun of CP max can be used by the operator to resize his portal equipment.
  • each terminal 4 in order to recover the decryption key K i corresponding to the crypto-period CP i , each terminal 4 sends a connection request to the portal 14 so that the latter delivers it a set of individual keys comprising at least a key corresponding to the crypto-period CP i and at least one key corresponding to the crypto-period CP i + 1 and the date of a subsequent connection to retrieve a set of decryption keys corresponding to at least one crypto-period if continuation of access is allowed.
  • the figure 2 schematically represents two successive crypto-periods CP 1 and CP 2 .
  • the arrow 20 represents the moment, in the crypto-period CP 1 , of connection of a terminal 4 to the portal 14, and the arrow 22 indicates the date of call 26 assigned by the gate 14 to the terminal 4 for a subsequent connection .
  • the date 26 is defined by an IPA time offset provided in CP 1 , calculated from a reference date 27 fixed according to the load of the gate 14.
  • the reference date 27 is signaled to each terminal 4 during the crypto-period CP 2 by the phase change of a specific call triggering signal 30 sent by the gateway 14. at each terminal 4.
  • the portal 14 calculates the dates of the subsequent calls for all connected terminals and schedules the calculated dates in the crypto-period. next CP i + 1 .
  • the figure 3 schematically illustrates the mechanism used to achieve this distribution.
  • this mechanism at a call of rank n during the crypto-period CP n corresponds the call rank n in the crypto-period CP n + 1 . If a new call N occurs during the crypto-period CP n + 1 , it is taken into account immediately.
  • the call dates of four terminals are distributed over three successive crypto-periods referenced respectively by CP n , CP n + 1 and CP n + 2 .
  • the first call of a terminal 4 during the crypto-period CP n corresponds the rank 1 in the crypto-period CP n + 1
  • the second call corresponds to the rank 2 and so on.
  • the scheme of this distribution is as follows:
  • the duration of a crypto-period CP i can be modified by the portal 14 to take account of new unplanned connection requests during the previous crypto-period CP 1 .
  • the purpose of this variation is to avoid the overloading of calls at the level of the portal 14.
  • This principle applies to the broadcasts of television channels and also to the event broadcasts in which the durations of the crypto-periods are known and also to the broadcasts even if in this case the estimated durations of an event are inferior or close to those of a crypto-period.
  • the portal 14 measures the call density and waits for the measured density to be less than a set threshold to trigger the distribution of the connection requests previously scheduled during the previous crypto-period. This principle makes it possible to absorb new connection requests.
  • the reference date 27 is signaled to each terminal 4 by the phase change of a specific call trigger signal 30 sent by the gate 14 to each terminal 4.
  • This figure schematically represents two contents (content 1) and (content 2) of an audiovisual program, broadcast successively during a crypto-period CP i and during the crypto-period CP i + 1 .
  • contents 1 and (content 2) of an audiovisual program broadcast successively during a crypto-period CP i and during the crypto-period CP i + 1 .
  • the Call density during period T is measured by Gate 14.
  • This call density measure identifies the period of high call density and distinguishes it from periods of low call density. to schedule pre-scheduled calls in a period of low call density.
  • gate 14 distributes the new connection requests after a phase change of signal 30 which occurs at the end of period T.
  • the change of the crypto-period, and therefore decryption keys is synchronized with the phase change of the signal 30.
  • the average number of calls received in a sliding time window of fixed duration, parameterizable by the portal 14 must be less than a predefined trigger threshold SDA representing a number of calls. in a given time and whose value depends essentially on portal 14.
  • This threshold constitutes an indicator of performance of portal 14.
  • Calls received during a crypto-period to give rise to a call-back are distributed within the duration DRA during the next crypto-period. Calls within a crypto-period are taken into account from the change of state of the 30.
  • the figure 6 illustrates the mechanism of variation of the crypto-period according to the parameters defined above.
  • the reference 40 designates the curve representing the variations as a function of time of the average number of NMDA calls received by the gate 14. This curve varies around the predefined trigger threshold SDA value.
  • the reference 46 indicates the connection requests received by the portal 14.
  • the average number of NMDA calls in the interval I is greater than the triggering threshold of the SDA calls, the gate 14 does not change the phase of the signal 30 which remains at the low level between the instant t 0 and the instant t 1 .
  • the gate 14 controls the phase change of the signal 30 which goes high at the instant t 1 corresponding to the end the duration DRA1 + ⁇ .
  • the signal 30 remains high up to the instant t 2 situated in the range II in which the average number of NMDA calls is below the triggering threshold of the SDA calls and the duration of the crypto-period CP 1 being greater than CP min .
  • the gate 14 does not change the phase of the signal 30 whatever the duration of the crypto-period and whatever the state of the duration DRA3.
  • the signal 30 remains at the low level between the instant t 2 and the instant t 3 .
  • the gate 14 changes the phase of the signal 30 which goes high at time t 3 .
  • the gate 14 informs the scrambler 16 whose mission is to indicate this change in the signal 30. This transition is used by the terminals 4 to apply the distribution of calls during the transition from one crypto-period to the next crypto-period.
  • portal 14 To set up this service, portal 14 must know the start dates and duration of each content it broadcasts. The principles stated above remain applicable for this type of diffusion.
  • the portal 14 distributes key pairs for the current content and for the following content by checking whether the requesting user has subscribed for the theme of the next event.
  • portal 14 creates the variable crypto-periods according to the criteria defined above for the same content. However, portal 14 does not create a new crypto-period only if the time remaining before the end of a content is sufficient for the distribution of calls can be programmed.
  • the figure 7 schematically illustrates the implementation mechanism of this embodiment.
  • the references 50 and 51 represent two successive contents broadcast on the same channel.
  • gate 14 tests whether the time remaining before the end of the content is greater than the duration CP min + DRA.
  • the reference 52 represents the evolution of the crypto-period in the case where the time remaining for the diffusion of the content 50 is greater than CP min + DRA.
  • gate 14 changes the crypto-period at time t.
  • the reference 54 represents the evolution of the crypto-period in the case where the time remaining for the diffusion of the content 50 is less than CP min + DRA.
  • the gate 14 does not change the phase of the signal 30.
  • portal 14 will calculate the set of keys used for the next content and send both sets of keys to the user.
  • the key distribution mechanism is schematically illustrated by the figure 8 .
  • a signal will be emitted during each content transition. From this, the terminal 4 determines which set of keys is used to descramble the contents.
  • the portal 14 sends a complete set of keys for the following content because it does not know a priori the parity of the phase at the beginning of the following content.
  • the set of keys sent for the following content will always be of the form: Key pair N + 1 , odd key N + 1
  • the gate 14 must also ask the scrambler 16 scrambling parameters (ALEA1 + CW) that will be used for the next crypto-period.
  • the figure 9 schematically illustrates the exchanges between the portal 14 and the scrambler during a broadcast.
  • the reference 60 represents the successive crypto-periods with the corresponding decryption keys, and the reference 62 represents the call initiation phases.
  • CP Create_Profile_CA: this function makes it possible to ask the scrambler 16 the scrambling parameters that will be valid in a crypto-period to come up. In return, scrambler 16 provides gate 14 with the requested parameters ALEA1 and CW. This request must be triggered before the end of the minimum duration of a crypto-period CP min .

Landscapes

  • Engineering & Computer Science (AREA)
  • Signal Processing (AREA)
  • Multimedia (AREA)
  • Databases & Information Systems (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)
  • Storage Device Security (AREA)
  • Signal Processing For Digital Recording And Reproducing (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Arrangements For Transmission Of Measured Signals (AREA)
  • Circuits Of Receivers In General (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Claims (13)

  1. Verfahren zur Ausgabe von Einzelschlüsseln zum Entschlüsseln verwürfelter digitaler Daten, die von einem Verbreitungssystem an mehrere Endgeräte übertragen werden, welche mit einem Datenaustauschnetzwerk (2) verbunden sind, wobei das Verbreitungssystem mindestens ein Portal (14), das dazu bestimmt ist, die Einzelschlüssel zu liefern, mindestens eine Verwürfelungsplattform (16) und mindestens einen Server (6) aufweist, der dazu bestimmt ist, die verwürfelten Daten zu verbreiten, wobei das Verfahren dadurch gekennzeichnet ist, dass es die folgenden Schritte aufweist:
    - Zerhacken der Verwürfelungsperiode der übertragenen Daten in eine Folge von Kryptoperioden CPi, die je eine Gültigkeitsdauer eines Einzelschlüssels Ki definieren,
    und bei jeder Verbindung eines Endgeräts (4) mit dem Portal (14),
    - Liefern an dieses Endgerät (4) eines Satzes von Einzelschlüsseln, der mindestens einen der Kryptoperiode CPi entsprechenden Schlüssel und mindestens einen der Kryptoperiode CPi+1 entsprechenden Schlüssel sowie das Datum einer späteren Verbindung aufweist, um einen Satz von Entschlüsselungsschlüsseln zu gewinnen, der mindestens einer späteren Kryptoperiode entspricht.
  2. Verfahren nach Anspruch 1, dadurch gekennzeichnet, dass die Dauer einer Kryptoperiode mindestens gleich einer Mindestdauer CPmin ist und von der Anzahl von gleichzeitig mit dem Portal (14) verbundenen Endgeräten abhängt.
  3. Verfahren nach Anspruch 2, dadurch gekennzeichnet, dass die Dauer einer Kryptoperiode permanent mit einem Schwellwert CPmax verglichen wird, und dass ein Alarmsignal vom Portal (14) erzeugt wird, wenn die Dauer der Kryptoperiode CPmax erreicht.
  4. Verfahren nach Anspruch 3, dadurch gekennzeichnet, dass die Verbindung eines Endgeräts (4) mit dem Portal (14) durch eine vom Endgerät (4) zum Portal (14) übertragene Anforderung initialisiert wird, und dass das Datum einer späteren Verbindung vom Portal (14) definiert wird.
  5. Verfahren nach Anspruch 4, dadurch gekennzeichnet, dass das Datum der späteren Verbindungsanforderung durch eine zeitliche Verzögerung bezüglich einer Zeitreferenz definiert wird, die in Abhängigkeit von der Belastung des Portals (14) definiert wird.
  6. Verfahren nach Anspruch 5, dadurch gekennzeichnet, dass die Zeitreferenz jedem Endgerät (4) durch die Phasenänderung eines spezifischen Rufauslösesignals (30) mitgeteilt wird.
  7. Verfahren nach Anspruch 6, dadurch gekennzeichnet, dass das Signal (30) eine Verteilungsdauer der Anrufe (DRA) initialisiert, die die Zeit darstellt, die zur Verarbeitung der Verbindungsanforderungen während einer Kryptoperiode CPi notwendig ist.
  8. Verfahren nach Anspruch 7, dadurch gekennzeichnet, dass die Verbindungsanforderungen vom Endgerät erst ab einer Zustandsänderung des Rufauslösesignals berücksichtigt werden.
  9. Verfahren nach Anspruch 8, dadurch gekennzeichnet, dass das Portal (14) die mittlere Anzahl von Verbindungsanforderungen während eines gleitenden Zeitfensters festgelegter Dauer durch Zählen der Anzahl von während des Zeitfensters empfangenen Anrufen misst.
  10. Verfahren nach Anspruch 8, dadurch gekennzeichnet, dass die Änderung der Phase des spezifischen Rufauslösesignals (30) nur durchgeführt wird, wenn die Anzahl von Anrufen geringer als eine vorbestimmte Rufauslöseschwelle SDA ist.
  11. Verfahren nach Anspruch 10, dadurch gekennzeichnet, dass die Änderung der Kryptoperiode nur durchgeführt wird, wenn die Dauer einer Kryptoperiode CPi größer ist als die Mindestdauer CPmin, und wenn die Verteilungsdauer der Anrufe (DRA) abgelaufen ist.
  12. Verfahren nach einem der Ansprüche 1 bis 10, dadurch gekennzeichnet, dass die verwürfelten Daten ein audiovisuelles Programm darstellen.
  13. Verfahren nach Anspruch 10, dadurch gekennzeichnet, dass die Dauer einer Kryptoperiode der Dauer des audiovisuellen Programms entspricht.
EP02799089A 2001-12-05 2002-12-03 Verfahren zum verteilen verwürfelter digital-datenentschlüsselungsschlüssel Expired - Lifetime EP1452026B1 (de)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
FR0115721A FR2833121B1 (fr) 2001-12-05 2001-12-05 Procede de distribution de cles de dechiffrement de donnees numeriques embrouillees
FR0115721 2001-12-05
PCT/FR2002/004150 WO2003049442A1 (fr) 2001-12-05 2002-12-03 Procede de distribution de cles de dechiffrement de donnees numeriques embrouillees

Publications (2)

Publication Number Publication Date
EP1452026A1 EP1452026A1 (de) 2004-09-01
EP1452026B1 true EP1452026B1 (de) 2009-03-25

Family

ID=8870133

Family Applications (1)

Application Number Title Priority Date Filing Date
EP02799089A Expired - Lifetime EP1452026B1 (de) 2001-12-05 2002-12-03 Verfahren zum verteilen verwürfelter digital-datenentschlüsselungsschlüssel

Country Status (10)

Country Link
US (1) US7693281B2 (de)
EP (1) EP1452026B1 (de)
JP (1) JP4489430B2 (de)
KR (1) KR100969647B1 (de)
AT (1) ATE427003T1 (de)
AU (1) AU2002364315A1 (de)
DE (1) DE60231737D1 (de)
ES (1) ES2324468T3 (de)
FR (1) FR2833121B1 (de)
WO (1) WO2003049442A1 (de)

Families Citing this family (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7048461B2 (en) * 2002-09-20 2006-05-23 Trw Inc. Ball joint assembly with wear indication
US7512987B2 (en) * 2004-12-03 2009-03-31 Motion Picture Association Of America Adaptive digital rights management system for plural device domains
RU2339077C1 (ru) * 2007-03-13 2008-11-20 Олег Вениаминович Сахаров Способ функционирования системы условного доступа для применения в компьютерных сетях и система для его осуществления
US20100037251A1 (en) * 2008-08-11 2010-02-11 Sony Ericsson Mobile Communications Ab Distributing information over dvb-h
EP2230845A1 (de) * 2009-03-16 2010-09-22 Irdeto Access B.V. Bereitstellung von Kontrollwörtern an einen Empfänger
IL277996B (en) 2020-10-12 2022-05-01 Elbit Systems C4I And Cyber Ltd Seismic detection system for seismic scanning while moving.

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5270809A (en) * 1991-03-29 1993-12-14 Scientific-Atlanta Data return for a television transmission system
US5671276A (en) * 1995-07-21 1997-09-23 General Instrument Corporation Of Delaware Method and apparatus for impulse purchasing of packaged information services
US6898285B1 (en) * 2000-06-02 2005-05-24 General Instrument Corporation System to deliver encrypted access control information to support interoperability between digital information processing/control equipment
US20020083438A1 (en) * 2000-10-26 2002-06-27 So Nicol Chung Pang System for securely delivering encrypted content on demand with access contrl
FR2831737B1 (fr) 2001-10-29 2003-12-26 France Telecom Procede et systeme de transmission avec controle d'acces de donnees numeriques embrouillees dans un reseau d'echange de donnees
NL1022226C2 (nl) * 2002-12-20 2004-07-19 Leader Electronics Europ B V Inrichting en werkwijze voor het omzetten van een wisselspanning.

Also Published As

Publication number Publication date
FR2833121B1 (fr) 2004-02-13
ATE427003T1 (de) 2009-04-15
US7693281B2 (en) 2010-04-06
FR2833121A1 (fr) 2003-06-06
DE60231737D1 (de) 2009-05-07
ES2324468T3 (es) 2009-08-07
US20050002527A1 (en) 2005-01-06
EP1452026A1 (de) 2004-09-01
AU2002364315A1 (en) 2003-06-17
WO2003049442A1 (fr) 2003-06-12
KR100969647B1 (ko) 2010-07-14
JP4489430B2 (ja) 2010-06-23
JP2005512416A (ja) 2005-04-28
KR20050044644A (ko) 2005-05-12

Similar Documents

Publication Publication Date Title
EP2055102B1 (de) Verfahren zur übertragung eines zusätzlichen datum zu einem empfangsendgerät
EP1890493A1 (de) Verfahren zum Widerrufen von Sicherheitsmodulen zur Sicherung Rundfunknachrichten
EP1827019A1 (de) Zugangskontroll-verfahren zu verschlüsselten Daten
EP0618736A1 (de) Verfahren und Vorrichtung zur Ver- und Entschlüsselung bestimmte Fernsehsendungen
FR2912270A1 (fr) Procede de generation d'une cle de chiffrement de trafic, procede de transmission de donnees, dispositifs de generation d'une cle de chiffrement de trafic, agencement de transmission de donnees
EP1454489A1 (de) Protokoll zur steuerung des zugriffsmodus von im punkt-zu-punkt- oder im punkt-zu-mehrpunkt-modus übertragenen daten
WO2020008131A1 (fr) Procede d'obtention d'une succession de cles cryptographiques
EP3063941B1 (de) Methode und vorrichtung zur verteilung von multimedializenzen im rahmen eines verteilungssystems eines gesicherten multimediadienstes
WO2003039153A2 (fr) Procede et systeme de transmission avec controle d'acces
EP3114598B1 (de) Verfahren zur bereitstellung von geschütztem multimedia-inhalt an ein endgerät
EP3022940B1 (de) Methode und vorrichtung zum schutz der dechiffrierschlüssel eines decoders
EP1452026B1 (de) Verfahren zum verteilen verwürfelter digital-datenentschlüsselungsschlüssel
EP3732849B1 (de) Verfahren und system zur identifizierung eines benutzerendgeräts zum empfangen von streaming-geschützten multimedia-inhalten
EP2633677B1 (de) Verfahren für den empfang von mithilfe von steuerwörtern und eines sicherheitscodes verschlüsselten multimedia-inhalten
EP1705915A1 (de) Verfahren zur Verwaltung des Zugriffs an Daten mit bedingtem Zugriff für ein schnelles Zapping
FR3044442A1 (fr) Procede d’identification de processeurs de securite.
EP2304944B1 (de) Verfahren für den schutz von über ein sendegerät an ein empfangsgerät üebrtragenen sicherheitsdaten
EP1488642A1 (de) Protokoll zur regelung des zugangs durch spezifische zeitbereiche auf verwürfelte daten
WO2004045184A1 (fr) Procede de renouvellement de cles symetriques dans un reseau numerique
EP2328316B1 (de) Zugriffskontrolle auf einen digitalen Inhalt
EP2326035B1 (de) Verarbeitungsverfahren durch ein Nachrichtensicherheitsmodul mit Zugriffskontrolle auf einen Inhalt, und damit verbundenes Sicherheitsmodul
EP2253142B1 (de) Verfahren zum sichern von durch ein senderendgerät an ein fernempfängerendgerät übertragenen nachrichten
EP2334007A1 (de) Verfahren zur Datenentschlüsselung durch eine Benutzereinrichtung bestehend aus einem Endgerät und einem Sicherheitsmodul
EP2265013A1 (de) Datenübertragung zu einem Kundengerät, das mit mindestens einem Dekodiermodul und einem Sicherheitsmodul ausgestattet ist

Legal Events

Date Code Title Description
PUAI Public reference made under article 153(3) epc to a published international application that has entered the european phase

Free format text: ORIGINAL CODE: 0009012

17P Request for examination filed

Effective date: 20040518

AK Designated contracting states

Kind code of ref document: A1

Designated state(s): AT BE BG CH CY CZ DE DK EE ES FI FR GB GR IE IT LI LU MC NL PT SE SI SK TR

GRAP Despatch of communication of intention to grant a patent

Free format text: ORIGINAL CODE: EPIDOSNIGR1

GRAS Grant fee paid

Free format text: ORIGINAL CODE: EPIDOSNIGR3

GRAA (expected) grant

Free format text: ORIGINAL CODE: 0009210

AK Designated contracting states

Kind code of ref document: B1

Designated state(s): AT BE BG CH CY CZ DE DK EE ES FI FR GB GR IE IT LI LU MC NL PT SE SI SK TR

REG Reference to a national code

Ref country code: GB

Ref legal event code: FG4D

Free format text: NOT ENGLISH

REG Reference to a national code

Ref country code: CH

Ref legal event code: EP

REG Reference to a national code

Ref country code: IE

Ref legal event code: FG4D

Free format text: LANGUAGE OF EP DOCUMENT: FRENCH

REF Corresponds to:

Ref document number: 60231737

Country of ref document: DE

Date of ref document: 20090507

Kind code of ref document: P

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: SI

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20090325

Ref country code: FI

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20090325

REG Reference to a national code

Ref country code: ES

Ref legal event code: FG2A

Ref document number: 2324468

Country of ref document: ES

Kind code of ref document: T3

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: SE

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20090625

Ref country code: AT

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20090325

NLV1 Nl: lapsed or annulled due to failure to fulfill the requirements of art. 29p and 29m of the patents act
REG Reference to a national code

Ref country code: IE

Ref legal event code: FD4D

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: PT

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20090901

Ref country code: CZ

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20090325

Ref country code: EE

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20090325

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: SK

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20090325

Ref country code: NL

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20090325

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: DK

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20090325

Ref country code: BG

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20090625

Ref country code: IE

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20090325

PLBE No opposition filed within time limit

Free format text: ORIGINAL CODE: 0009261

STAA Information on the status of an ep patent application or granted ep patent

Free format text: STATUS: NO OPPOSITION FILED WITHIN TIME LIMIT

26N No opposition filed

Effective date: 20091229

BERE Be: lapsed

Owner name: FRANCE TELECOM

Effective date: 20091231

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: MC

Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES

Effective date: 20100701

REG Reference to a national code

Ref country code: CH

Ref legal event code: PL

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: CH

Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES

Effective date: 20091231

Ref country code: LI

Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES

Effective date: 20091231

Ref country code: BE

Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES

Effective date: 20091231

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: IT

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20090325

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: LU

Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES

Effective date: 20091203

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: TR

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20090325

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: CY

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20090325

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: GR

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20090325

PGFP Annual fee paid to national office [announced via postgrant information from national office to epo]

Ref country code: GB

Payment date: 20141126

Year of fee payment: 13

Ref country code: ES

Payment date: 20141211

Year of fee payment: 13

Ref country code: DE

Payment date: 20141121

Year of fee payment: 13

PGFP Annual fee paid to national office [announced via postgrant information from national office to epo]

Ref country code: FR

Payment date: 20141217

Year of fee payment: 13

REG Reference to a national code

Ref country code: DE

Ref legal event code: R119

Ref document number: 60231737

Country of ref document: DE

GBPC Gb: european patent ceased through non-payment of renewal fee

Effective date: 20151203

REG Reference to a national code

Ref country code: FR

Ref legal event code: ST

Effective date: 20160831

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: GB

Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES

Effective date: 20151203

Ref country code: DE

Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES

Effective date: 20160701

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: FR

Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES

Effective date: 20151231

REG Reference to a national code

Ref country code: ES

Ref legal event code: FD2A

Effective date: 20170126

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: ES

Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES

Effective date: 20151204